Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/lpuiNool6aPUP8CkBPWgSOKshFM.roa
File: lpuiNool6aPUP8CkBPWgSOKshFM.roa (raw, json)
Hash identifier: 2Hc1L70dIIGYWE7ylt6FwJU1ID37waQvj1fAKjMTjIc=
Subject key identifier: 96:9B:A2:36:8A:25:E9:A3:D4:3F:C0:A4:04:F5:A0:48:E2:AC:84:53
Certificate issuer: /CN=2b928097dc9f89a7a3a8a296a78a4f9d0cbce17f
Certificate serial: 018DC7D8A39EFBFDA486F322911F65A6FDCF
Authority key identifier: 2B:92:80:97:DC:9F:89:A7:A3:A8:A2:96:A7:8A:4F:9D:0C:BC:E1:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5KAl9yfiaejqKKWp4pPnQy84X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/lpuiNool6aPUP8CkBPWgSOKshFM.roa
Signing time: Tue 20 Feb 2024 18:48:00 +0000
ROA not before: Tue 20 Feb 2024 18:48:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 46.243.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 23:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:d8:a3:9e:fb:fd:a4:86:f3:22:91:1f:65:a6:fd:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b928097dc9f89a7a3a8a296a78a4f9d0cbce17f
Validity
Not Before: Feb 20 18:48:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=969ba2368a25e9a3d43fc0a404f5a048e2ac8453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fe:b7:f1:86:19:3b:71:66:9a:d7:84:ef:be:
b7:dd:34:41:b2:5d:6e:87:07:77:fa:79:2e:ed:4c:
85:f6:96:a2:b7:de:5d:7e:8f:8f:fb:ff:0b:12:2c:
ad:25:ed:c1:d4:e7:e8:f2:90:42:7e:49:66:ec:35:
89:0a:e6:bb:54:f2:ba:14:14:e9:58:6d:bb:12:ef:
08:c9:93:1d:2e:f8:d5:da:a4:81:c6:54:9d:1f:0f:
b3:3d:aa:e0:64:eb:b8:b7:14:09:55:0b:b1:b5:80:
5a:d9:db:78:6d:9b:9b:b9:d9:9a:c3:cd:04:88:85:
b1:81:38:01:4f:68:3a:a6:1d:eb:33:95:fa:aa:0b:
bf:23:34:dc:6e:7f:ca:d3:16:28:ee:ec:cc:96:9c:
59:42:61:5f:ab:eb:3d:cb:91:65:54:a0:eb:4d:e1:
65:cd:66:dc:e0:98:ef:df:17:87:c6:72:32:4f:47:
2d:0a:8d:c6:b7:63:34:2a:9a:27:9f:ba:9b:eb:ae:
6f:c7:81:e5:e5:da:5d:d2:e6:fc:17:76:c5:f3:48:
d0:f8:4c:c9:df:02:a7:bb:c7:5f:8e:ae:cb:81:17:
3a:d1:8e:e2:9c:41:ed:78:e6:6b:62:e3:00:fd:40:
95:ed:c0:9e:4c:7b:7c:10:18:dd:91:a5:41:00:b5:
aa:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9B:A2:36:8A:25:E9:A3:D4:3F:C0:A4:04:F5:A0:48:E2:AC:84:53
X509v3 Authority Key Identifier:
keyid:2B:92:80:97:DC:9F:89:A7:A3:A8:A2:96:A7:8A:4F:9D:0C:BC:E1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5KAl9yfiaejqKKWp4pPnQy84X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/lpuiNool6aPUP8CkBPWgSOKshFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/K5KAl9yfiaejqKKWp4pPnQy84X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.21.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:9e:77:5f:46:74:b6:bc:98:3c:6a:22:e8:4f:b9:c0:7d:32:
e3:ba:45:d5:52:37:cf:5c:08:57:3f:d4:a6:cf:2c:8a:ca:6f:
6e:b7:94:d2:09:41:fd:9d:ae:64:38:3e:1f:08:37:c9:5a:8e:
3d:8c:51:f6:f7:2f:5b:96:65:ea:6b:16:01:5b:dd:b4:e9:27:
69:8b:cf:55:04:1e:8b:a9:5b:6a:46:fd:f1:c3:1d:5a:7e:17:
72:0b:9f:f2:5a:27:97:ed:c8:1a:0b:7b:89:d2:1a:18:10:67:
dc:fe:1c:20:dd:5f:7c:45:48:c7:18:e9:e4:c2:03:db:75:aa:
a2:cf:fc:16:24:75:43:4b:b7:29:07:68:13:c5:43:13:f4:c9:
dc:d2:b3:cc:17:c6:15:54:2a:58:12:3e:4c:f7:fb:ae:81:f2:
ce:78:ee:28:1c:de:a0:c4:f6:f7:ae:69:e3:f9:ba:0d:0c:5e:
58:7e:ca:13:bb:28:38:fd:f0:6e:d6:63:89:6a:9c:8b:bb:76:
75:61:d0:4e:90:07:26:d3:ff:05:28:a5:31:46:af:3e:16:94:
37:b2:5f:ab:2f:70:b8:be:27:b7:c3:82:ec:3d:0d:31:2b:88:
21:17:3c:88:b8:30:4c:78:d1:36:ce:3f:12:7e:91:4f:d6:0e:
4c:2c:1f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:16 2024 by rpki-client on console-fra.rpki-client.org